Multiple vulnerabilities in Mozilla Thunderbird

Описание

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

1. Memory safety vulnerability can be exploited to execute arbitrary code.
2. Security vulnerability in can be exploited to bypass security restrictions.
3. Security UI vulnerability can be exploited to spoof user interface.
4. Information disclosure vulnerability can be exploited to obtain sensitive information.
5. Use after free vulnerability in XSLT can be exploited to cause denial of service or execute arbitrary code.
6. Use after free vulnerability can be exploited to cause denial of service or execute arbitrary code.
7. Cross-site scripting (XSS) vulnerability can be exploited to perform cross-site scripting attack.
8. Use after free vulnerability in Custom Highlight can be exploited to cause denial of service or execute arbitrary code.
9. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• MFSA2025-11
  

Связанные продукты

• Mozilla-Thunderbird

Список CVE

• CVE-2025-1014
  unknown
• CVE-2025-0510
  unknown
• CVE-2025-1017
  unknown
• CVE-2025-1013
  unknown
• CVE-2025-1009
  unknown
• CVE-2025-1012
  unknown
• CVE-2025-1015
  unknown
• CVE-2025-1016
  unknown
• CVE-2025-1010
  unknown
• CVE-2025-1011
  unknown
• CVE-2025-1020
  unknown
• CVE-2025-1019
  unknown
• CVE-2025-1018
  unknown

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com